Security Planning for RMS

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

As with any computer in your organization, security must be considered as part of your deployment planning. RMS is implemented as a Web service, so you can control access to RMS in the same manner as you would other Web services, by using access control lists and Secure Sockets Layer (SSL).

RMS can also be implemented in an isolated domain if part of your deployment calls for RMS to provide an additional layer of control for sensitive information.

Because RMS uses a private key system to encrypt content, the RMS private key must be backed up and managed as part of your security plan.

This subject covers the following topics:

• Determining Access Requirements

• Defining Key Management Requirements